High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-09	CVE-2022-31214	Improper Privilege Management vulnerability in multiple products A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. local low complexity firejail-project fedoraproject debian CWE-269	7.8
2020-08-11	CVE-2020-17367	Argument Injection or Modification vulnerability in multiple products Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection. local low complexity firejail-project debian fedoraproject opensuse CWE-88	7.8
2019-06-03	CVE-2019-12589	Incorrect Permission Assignment for Critical Resource vulnerability in Firejail Project Firejail In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker. local low complexity firejail-project CWE-732	8.8
2019-05-31	CVE-2019-12499	Unspecified vulnerability in Firejail Project Firejail Firejail before 0.9.60 allows truncation (resizing to length 0) of the firejail binary on the host by running exploit code inside a firejail sandbox and having the sandbox terminated. network high complexity firejail-project	8.1
2017-04-13	CVE-2016-10123	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges. local low complexity firejail-project CWE-264	7.2
2017-04-13	CVE-2016-10122	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail does not properly clean environment variables, which allows local users to gain privileges. local low complexity firejail-project CWE-264	7.2
2017-04-13	CVE-2016-10121	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges. local low complexity firejail-project CWE-264	7.2
2017-04-13	CVE-2016-10120	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges. local low complexity firejail-project CWE-264	7.2
2017-04-13	CVE-2016-10119	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges. local low complexity firejail-project CWE-264	7.2
2017-04-13	CVE-2016-10117	Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc. local low complexity firejail-project CWE-264	7.2